Description

An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 before 5.0.2. The intcomma template filter was subject to a potential denial-of-service attack when used with very long strings.

Remediation

References

CVE-2024-24680

Related Vulnerabilities

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1835)

WordPress Plugin DMCA WaterMarker Cross-Site Scripting (1.0)

WordPress Plugin Slideshow Pro Arbitrary File Upload (2.4)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3543)

MySQL CVE-2021-2193 Vulnerability (CVE-2021-2193)

Severity

High

Classification

CVE-2024-24680 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities